CrowdStrike Conducts External Review to Better Understand What Triggered the Global Outage

The root cause analysis conducted by external vendors has revealed an interprocess communication (IPC) template type error.

Advertisement
Written by Akash Dutta, Edited by Siddharth Suvarna | Updated: 7 August 2024 16:05 IST
Highlights
  • CrowdStrike did not name the vendors performing the external review
  • The CrowdStrike outage occurred on July 19
  • The outage affected Windows laptops and desktops globally
CrowdStrike Conducts External Review to Better Understand What Triggered the Global Outage

Microsoft services such as Office 365 and Azure were affected during the CrowdStrike outage

Photo Credit: Unsplash/Windows

CrowdStrike, the US-based cybersecurity firm, caused a global outage on July 19 after an update resulted in Windows laptops and desktops crashing and getting stuck in a boot loop. The outage lasted multiple hours affecting different sectors including airlines, healthcare, IT, and more. After fixing the issue, the company published a post-incident report highlighting that its artificial intelligence (AI) system dubbed 'Falcon sensor' caused an error. Now, the company has published a detailed report after conducting an external review to highlight what exactly went wrong.

CrowdStrike Publishes External Review Report

In a report titled ‘External Technical Root Cause Analysis — Channel File 291', the cybersecurity firm said it found that the Falcon sensor deployed an erroneous template type string which affected Windows interprocess communication (IPC) mechanisms.

As per CrowdStrike, Falcon runs machine-learning models that automatically identify and remediate the latest and advanced threats from bad actors. Right before the July 19 outage, the detection functionality pushed a new “template type” to millions of computers of customers' Falcon installations in version 7.11.

However, this is where things went wrong. The report highlighted that the IPC template type had defined 21 input parameter fields but “the integration code that invoked the Content Interpreter with Channel File 291's Template Instances supplied only 20 input values to match against.” This mismatch is usually not a concern since so far the AI system has never picked an input outside the given 20.

Advertisement

But on that day, the sensor asked to inspect template type 21. Since there was no corresponding integration code relating to it, the attempt to access the 21st input parameter created an out-of-bounds memory error and resulted in a system crash.

Highlighting steps for mitigation, the report claimed that CrowdStrike developed a patch for the Sensor Content Compiler that validates the number of inputs provided by a Template Type. This went into production on July 27. The firm said that it has also focused on increased testing and validation before pushing an update. Further, it has also stated that all future updates will be rolled out in a phased manner to minimise any potential error.

Advertisement

Notably, no details about the external vendors who conducted the review were provided.

 

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: CrowdStrike, Microsoft Hub, Laptops
Advertisement

Related Stories

Popular Mobile Brands
  1. Oppo Reno 14 5G, Reno 14 Pro 5G India Launch Timeline Leaked
  2. Apple Back to School Offer Brings Discounts on iPad Air, Other Products
  3. Redmi Pad 2 With 11-Inch 2.5K Display, 9,000mAh Battery Launched in India
  4. Nothing Headphone 1 Price, Colour Options Leaked Ahead of Launch
  5. Vivo X200 FE Launch Date, Colours, and Design Revealed Ahead of Launch
  6. iQOO Z10 Lite 5G With 6,000mAh Battery Launched in India: Price, Features
  7. Infinix Note 50s 5G+ Gets a New RAM and Storage Option in India: See Price
  8. Nothing Phone 3 to Offer Longer Software Support Than Its Predecessor
  9. Government Announces FASTag-Based Annual Pass for Highway Commutes
  10. Pixel 10, Pixel 10 Pro Alleged Case Hint at Design Changes
  1. SpaceX Launches 26 Starlink Satellites from California to Expand Low Earth Orbit Internet Network
  2. NASA and DoD Simulate Critical Abort Scenarios to Secure Artemis II Moon Mission
  3. Brain’s Built-In Signal Threshold Helps Differentiate Imagination from Reality
  4. Feather-Legged Lace Weaver Spider Uses Toxic Silk Instead of Fangs to Kill Its Prey
  5. New Habitability Model Helps Identify Which Alien Planets Might Be Able to Host Life
  6. Warner Bros. Games Restructures to Focus on Harry Potter, Game of Thrones, Mortal Kombat and DC Franchises
  7. Google Pixel 10, Pixel 10 Pro Alleged Case Suggests Minor Design Changes From Predecessors
  8. Oppo Reno 14 5G, Reno 14 Pro 5G India Launch Timeline Leaked
  9. Nothing Phone 3 to Offer Longer Android and Security Update Support Than Its Predecessor
  10. Boat Wave Fortune Smartwatch With NFC Tap & Pay Feature, Bluetooth Calling Launched in India
Gadgets 360 is available in
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.